CVE-2003-0898

IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on 1 db2job and 2 db2job2...

CVE-2003-1139

Musicqueue 1.2.0 allows local users to overwrite arbitrary files by triggering a segmentation fault and using a symlink attack on the resulting musicqueue.crash file...

CVE-2003-0875

Symbolic link vulnerability in the slpd script slpd.allinit for OpenSLP before 1.0.11 allows local users to overwrite arbitrary files via the route.check temporary file...

CVE-2003-0872

The CVE-2003-0872 issue affects OpenServer prior to version 5.0.6. The vulnerability arises from insecure handling of temporary files in several OpenServer scripts, enabling local users to overwrite files via a symlink attack on /tmp and perform other unauthorized activities. According to the CVE...

CVE-2003-0872

Certain scripts in OpenServer before 5.0.6 allow local users to overwrite files and conduct other unauthorized activities via a symlink attack on temporary files...

CVE-2003-0844

modgzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode without the Apache log, allows local users to overwrite arbitrary files via 1 a symlink attack on predictable temporary filenames on Unix systems, or 2 an NTFS hard link on Windows systems when the...

CVE-2003-0846

SuSEconfig.javarunt in the javarunt package on SuSE Linux 7.3Pro allows local users to overwrite arbitrary files via a symlink attack on the .javawrapper temporary file...

CVE-2003-1081

Aspppls for Solaris 8 allows local users to overwrite arbitrary files via a symlink attack on the .asppp.fifo temporary file...

CVE-2003-0650

Directory traversal vulnerability in GSAPAK.EXE for GameSpy Arcade, possibly versions before 1.3e, allows remote attackers to overwrite arbitrary files and execute arbitrary code via .. dot dot sequences in filenames in a .APK Zip file...

CVE-2003-0603

Bugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to overwrite arbitrary files via a symlink attack on temporary files that are created in directories with group-writable or world-writable permissions...

CVE-2003-0655

rscsi in cdrtools 2.01 and earlier allows local users to overwrite arbitrary files and gain root privileges by specifying the target file as a command line argument, which is modified while rscsi is running with privileges...

unzip vulnerability patched

Upgraded infozip packages are available for Slackware 9.0 and -current. These fix a security issue where a specially crafted archive may overwrite files including system files anywhere on the filesystem upon extraction by a user with sufficient permissions. For more information, see:...

Microsoft Internet Explorer 6 - ADODB.Stream Object File Installation

source: https://www.securityfocus.com/bid/10514/info Microsoft Internet Explorer is prone to a security weakness that may permit malicious HTML documents to create or overwrite files on a victim file system when interpreted from the Local Zone or other Security Zones with relaxed security...

CVE-2003-0517

faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files...

CVE-2003-0578

ccidir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files...

CVE-2003-0440

The 1 semi MIME library 1.14.5 and earlier, and 2 wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2003-0517

faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files...

CVE-1999-1263

Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file...

CVE-2003-0679

CVE-2003-0679 concerns a vulnerability in the libcpr library used by SGI’s Checkpoint/Restart (cpr) on IRIX 6.5.x. The issue, reported as a local vulnerability, permits users to truncate or overwrite certain files for which they lack permissions. The SGI Security Advisory 20030802-01-P explains t...

CVE-2003-0679

Unknown vulnerability in the libcpr library for the Checkpoint/Restart cpr system on SGI IRIX 6.5.21f and earlier allows local users to truncate or overwrite certain files...